GUI v1.8.0 is no longer compatible with several older distros by default; manual pip install or flatpak workaround available. Daemon v1.8.0 remains compatible with GUI v1.7.2.
apt-based distros with custom system firewall rules or changed firewall policies will be prompted to update; rpm-based distros must update manually if needed.
If daemon does not autostart after upgrade, enable it manually: sudo systemctl enable --now opensnitch.service
Breaking changes
GUI requires PyQt6 (incompatible by default with Ubuntu 22.04 or earlier, LinuxMint 21.2 or earlier, OpenSUSE 15.5 or earlier, PopOS 22.x, Elementary OS 7.x, Zorin)
Firewall rules consolidated into single nft table 'opensnitch' instead of multiple tables (mangle, output, input, prerouting, etc.)
Default daemon configuration file has been updated — existing installations may need to manually update their config file (see commit 1c94da7cb6b4bddd3054bcebed11a528935f52cb).
Ubuntu 22.04 / PopOS 22.x / LinuxMint 21.x / Elementary OS 7.x / Zorin users must follow the post-install steps at https://github.com/evilsocket/opensnitch/issues/1214#issuecomment-2518864350 after installing the GUI.
Wayland users experiencing crashes when clicking pop-ups should open Preferences and set the Qt platform plugin to 'xcb' in the UI tab.
Notable features
Default localhost allow rules (000-allow-localhost.json and 000-allow-localhost6.json) distributed with packaging
New disabled-by-default netfilter rule to bypass interception entirely (system-fw.json)
